Vulnerability Change Records for CVE-2018-8034

Change History

CVE Modified by Apache Software Foundation 7/23/2019 7:15:11 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/ac51944aef91dd5006b8510b0bef337adaccfe962fb90e7af9c22db4@%3Cissues.activemq.apache.org%3E [No Types Assigned]

CVE Modified by Apache Software Foundation 5/14/2019 1:29:02 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:1159 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:1160 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:1161 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:1162 [No Types Assigned]

CVE Modified by Apache Software Foundation 3/25/2019 7:35:39 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c7eb131457f708@%3Cdev.tomcat.apache.org%3E [No Types Assigned]
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/5c0e00fd31efc11e147bf99d0f03c00a734447d3b131ab0818644cdb@%3Cdev.tomcat.apache.org%3E [No Types Assigned]
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/b5e3f51d28cd5d9b1809f56594f2cf63dcd6a90429e16ea9f83bbedc@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

CVE Modified by Apache Software Foundation 9/03/2018 6:29:00 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.debian.org/debian-lts-announce/2018/09/msg00001.html [No Types Assigned]

CVE Modified by Apache Software Foundation 4/15/2020 5:15:26 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.oracle.com/security-alerts/cpuapr2020.html [No Types Assigned]

CVE Modified by Apache Software Foundation 4/15/2019 12:31:27 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/1dd0a59c1295cc08ce4c9e7edae5ad2268acc9ba55adcefa0532e5ba@%3Cdev.tomcat.apache.org%3E [No Types Assigned]
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/3d19773b4cf0377db62d1e9328bf9160bf1819f04f988315086931d7@%3Cdev.tomcat.apache.org%3E [No Types Assigned]
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3b77b8c7cb61b3@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

CVE Modified by Apache Software Foundation 10/16/2019 2:15:20 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html [No Types Assigned]

CVE Modified by Apache Software Foundation 10/16/2018 9:31:33 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html [No Types Assigned]

CVE Modified by Apache Software Foundation 8/29/2018 6:29:06 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.debian.org/security/2018/dsa-4281 [No Types Assigned]

CVE Modified by Apache Software Foundation 3/21/2019 12:0:58 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551@%3Cdev.tomcat.apache.org%3E [No Types Assigned]
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/eb6efa8d59c45a7a9eff94c4b925467d3b3fec8ba7697f3daa314b04@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

CVE Modified by Apache Software Foundation 2/03/2020 7:15:25 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/r3bbb800a816d0a51eccc5a228c58736960a9fffafa581a225834d97d@%3Cdev.tomcat.apache.org%3E [No Types Assigned]
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/r6ccee4e849bc77df0840c7f853f6bd09d426f6741247da2b7429d5d9@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

Modified Analysis 4/03/2019 8:9:48 AM

Action Type Old Value New Value
Changed Reference Type
https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551@%3Cdev.tomcat.apache.org%3E No Types Assigned
https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551@%3Cdev.tomcat.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type
https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c7eb131457f708@%3Cdev.tomcat.apache.org%3E No Types Assigned
https://lists.apache.org/thread.html/388a323769f1dff84c9ec905455aa73fbcb20338e3c7eb131457f708@%3Cdev.tomcat.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type
https://lists.apache.org/thread.html/5c0e00fd31efc11e147bf99d0f03c00a734447d3b131ab0818644cdb@%3Cdev.tomcat.apache.org%3E No Types Assigned
https://lists.apache.org/thread.html/5c0e00fd31efc11e147bf99d0f03c00a734447d3b131ab0818644cdb@%3Cdev.tomcat.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type
https://lists.apache.org/thread.html/b5e3f51d28cd5d9b1809f56594f2cf63dcd6a90429e16ea9f83bbedc@%3Cdev.tomcat.apache.org%3E No Types Assigned
https://lists.apache.org/thread.html/b5e3f51d28cd5d9b1809f56594f2cf63dcd6a90429e16ea9f83bbedc@%3Cdev.tomcat.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type
https://lists.apache.org/thread.html/eb6efa8d59c45a7a9eff94c4b925467d3b3fec8ba7697f3daa314b04@%3Cdev.tomcat.apache.org%3E No Types Assigned
https://lists.apache.org/thread.html/eb6efa8d59c45a7a9eff94c4b925467d3b3fec8ba7697f3daa314b04@%3Cdev.tomcat.apache.org%3E Mailing List, Third Party Advisory

CVE Modified by Apache Software Foundation 8/06/2019 1:15:40 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:2205 [No Types Assigned]

CVE Modified by Apache Software Foundation 8/02/2018 9:29:05 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.securityfocus.com/bid/104895 [No Types Assigned]
Added Reference

								
							
							
						
http://www.securitytracker.com/id/1041374 [No Types Assigned]
Added Reference

								
							
							
						
https://lists.debian.org/debian-lts-announce/2018/07/msg00047.html [No Types Assigned]
Added Reference

								
							
							
						
https://usn.ubuntu.com/3723-1/ [No Types Assigned]

CVE Modified by Apache Software Foundation 3/05/2019 6:29:02 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:0450 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:0451 [No Types Assigned]

CVE Modified by Apache Software Foundation 4/15/2019 8:31:22 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/845312a10aabbe2c499fca94003881d2c79fc993d85f34c1f5c77424@%3Cdev.tomcat.apache.org%3E [No Types Assigned]
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/88855876c33f2f9c532ffb75bfee570ccf0b17ffa77493745af9a17a@%3Cdev.tomcat.apache.org%3E [No Types Assigned]
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/e85e83e9954f169bbb77b44baae5a33d8de878df557bb32b7f793661@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

Modified Analysis 3/08/2019 11:18:52 AM

Action Type Old Value New Value
Changed Reference Type
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html No Types Assigned
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html Patch, Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2019:0130 No Types Assigned
https://access.redhat.com/errata/RHSA-2019:0130 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2019:0131 No Types Assigned
https://access.redhat.com/errata/RHSA-2019:0131 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2019:0450 No Types Assigned
https://access.redhat.com/errata/RHSA-2019:0450 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2019:0451 No Types Assigned
https://access.redhat.com/errata/RHSA-2019:0451 Third Party Advisory
Changed Reference Type
https://lists.debian.org/debian-lts-announce/2018/09/msg00001.html Third Party Advisory
https://lists.debian.org/debian-lts-announce/2018/09/msg00001.html Mailing List, Third Party Advisory

CVE Modified by Apache Software Foundation 4/23/2019 3:32:40 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html [No Types Assigned]

CVE Modified by Apache Software Foundation 2/13/2020 12:15:28 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/r48c1444845fe15a823e1374674bfc297d5008a5453788099ea14caf0@%3Cdev.tomcat.apache.org%3E [No Types Assigned]
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c@%3Cdev.tomcat.apache.org%3E [No Types Assigned]
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/raba0fabaf4d56d4325ab2aca8814f0b30a237ab83d8106b115ee279a@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

Modified Analysis 5/02/2019 9:27:13 AM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:oracle:retail_order_broker:5.1:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:retail_order_broker:5.2:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:retail_order_broker:15.0:*:*:*:*:*:*:*
Changed CPE Configuration
OR
     *cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:* versions from (including) 7.0.35 up to (including) 7.0.88.
     *cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:* versions from (including) 8.0.0 up to (including) 8.0.52
     *cpe:2.3:a:apache:tomcat:8.0.0:rc1:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:8.0.0:rc10:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:8.0.0:rc2:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:8.0.0:rc3:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:8.0.0:rc4:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:8.0.0:rc5:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:8.0.0:rc6:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:8.0.0:rc7:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:8.0.0:rc8:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:8.0.0:rc9:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:* versions from (including) 8.5.0 up to (including) 8.5.31
     *cpe:2.3:a:apache:tomcat:9.0.0:m1:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m10:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m11:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m12:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m13:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m14:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m15:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m16:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m17:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m18:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m19:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m2:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m20:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m21:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m22:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m23:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m24:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m25:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m26:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m27:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m3:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m4:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m5:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m6:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m7:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m8:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m9:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:* versions from (including) 9.0.1 up to (including) 9.0.9
OR
     *cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:* versions from (including) 7.0.35 up to (including) 7.0.88
     *cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:* versions from (including) 8.0.0 up to (including) 8.0.52
     *cpe:2.3:a:apache:tomcat:8.0.0:rc1:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:8.0.0:rc10:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:8.0.0:rc2:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:8.0.0:rc3:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:8.0.0:rc4:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:8.0.0:rc5:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:8.0.0:rc6:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:8.0.0:rc7:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:8.0.0:rc8:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:8.0.0:rc9:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:* versions from (including) 8.5.0 up to (including) 8.5.31
     *cpe:2.3:a:apache:tomcat:9.0.0:m1:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m10:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m11:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m12:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m13:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m14:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m15:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m16:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m17:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m18:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m19:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m2:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m20:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m21:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m22:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m23:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m24:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m25:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m26:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m27:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m3:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m4:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m5:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m6:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m7:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m8:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:9.0.0:m9:*:*:*:*:*:*
     *cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:* versions from (including) 9.0.1 up to (including) 9.0.9
Changed Reference Type
https://lists.apache.org/thread.html/1dd0a59c1295cc08ce4c9e7edae5ad2268acc9ba55adcefa0532e5ba@%3Cdev.tomcat.apache.org%3E No Types Assigned
https://lists.apache.org/thread.html/1dd0a59c1295cc08ce4c9e7edae5ad2268acc9ba55adcefa0532e5ba@%3Cdev.tomcat.apache.org%3E Vendor Advisory
Changed Reference Type
https://lists.apache.org/thread.html/3d19773b4cf0377db62d1e9328bf9160bf1819f04f988315086931d7@%3Cdev.tomcat.apache.org%3E No Types Assigned
https://lists.apache.org/thread.html/3d19773b4cf0377db62d1e9328bf9160bf1819f04f988315086931d7@%3Cdev.tomcat.apache.org%3E Vendor Advisory
Changed Reference Type
https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3b77b8c7cb61b3@%3Cdev.tomcat.apache.org%3E No Types Assigned
https://lists.apache.org/thread.html/6af47120905aa7d8fe12f42e8ff2284fb338ba141d3b77b8c7cb61b3@%3Cdev.tomcat.apache.org%3E Vendor Advisory
Changed Reference Type
https://lists.apache.org/thread.html/845312a10aabbe2c499fca94003881d2c79fc993d85f34c1f5c77424@%3Cdev.tomcat.apache.org%3E No Types Assigned
https://lists.apache.org/thread.html/845312a10aabbe2c499fca94003881d2c79fc993d85f34c1f5c77424@%3Cdev.tomcat.apache.org%3E Vendor Advisory
Changed Reference Type
https://lists.apache.org/thread.html/88855876c33f2f9c532ffb75bfee570ccf0b17ffa77493745af9a17a@%3Cdev.tomcat.apache.org%3E No Types Assigned
https://lists.apache.org/thread.html/88855876c33f2f9c532ffb75bfee570ccf0b17ffa77493745af9a17a@%3Cdev.tomcat.apache.org%3E Vendor Advisory
Changed Reference Type
https://lists.apache.org/thread.html/e85e83e9954f169bbb77b44baae5a33d8de878df557bb32b7f793661@%3Cdev.tomcat.apache.org%3E No Types Assigned
https://lists.apache.org/thread.html/e85e83e9954f169bbb77b44baae5a33d8de878df557bb32b7f793661@%3Cdev.tomcat.apache.org%3E Vendor Advisory
Changed Reference Type
https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html No Types Assigned
https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html Patch, Third Party Advisory

CVE Modified by Apache Software Foundation 6/18/2019 5:15:10 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:1529 [No Types Assigned]

CVE Modified by Apache Software Foundation 7/23/2019 7:15:34 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html [No Types Assigned]

CVE Modified by Apache Software Foundation 8/18/2018 6:29:03 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://security.netapp.com/advisory/ntap-20180817-0001/ [No Types Assigned]

CVE Modified by Apache Software Foundation 11/14/2019 7:15:11 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:3892 [No Types Assigned]

CVE Modified by Apache Software Foundation 1/23/2019 6:29:04 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:0130 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:0131 [No Types Assigned]